FEDORA-2015-2773b85b49

security update in Fedora 23 for qemu

Status: stable 3 years ago
  • Fix SSE4 emulation with accel=tcg (bz #1270703)
  • CVE-2015-8345: Fix infinite loop in eepro100 (bz #1285214)
  • CVE-2015-7504: Fix heap overflow in pcnet (bz #1286543)
  • CVE-2015-7512: Fix buffer overflow in pcnet (bz #1286549)

Comments 8

This update has been submitted for testing by crobinso.

This update has been pushed to testing.

works for me

karma: +1

VM continue to work for me

karma: +1

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by bodhi.

no issues with my VMs

karma: +1

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 6

00 #1261461 CVE-2015-7504 Qemu: net: pcnet: heap overflow vulnerability in pcnet_receive
00 #1285061 CVE-2015-7512 Qemu: net: pcnet: buffer overflow in non-loopback mode
00 #1285213 CVE-2015-8345 Qemu: net: eepro100: infinite loop in processing command block list
00 #1285214 CVE-2015-8345 Qemu: net: eepro100: infinite loop in processing command block list [fedora-all]
00 #1286543 CVE-2015-7504 Qemu: net: pcnet: heap overflow vulnerability in pcnet_receive [fedora-all]
00 #1286549 CVE-2015-7512 Qemu: net: pcnet: buffer overflow in non-loopback mode [fedora-all]

Automated Test Results